WordPress OSINT, maintenance or security needs? Reach out!
TLDWP

Domain Details for c*f*e*s*o*.tours

Site Information

WordPress Version: 4.7.3 ⚠️ VULNERABLE

Theme: superlist (used by 29 domains)

Last Checked: 2026-06-13 02:28:17

HTTPS: ✅ Yes

Plugins (18)

Plugin Used By
contact-form-7 1,805,300
cookie-notice 155,593
devbuddy-twitter-feed 15
inventor 37
inventor-boxes 30
inventor-claims 20
inventor-compare 17
inventor-coupons 17
inventor-favorites 20
inventor-google-map 32
inventor-partners 25
inventor-reviews 25
inventor-testimonials 25
lightbox-plus 4,287
super-socializer 4,698
wordpress-social-login 2,237
wp-piwik 916
youtube-embed-plus 39,756

Security Headers

D
Grade D

4 missing headers

Missing Headers:

  • Content-Security-Policy (CSP) — Prevents XSS attacks ?
  • X-Frame-Options — Prevents clickjacking ?
  • Referrer-Policy — Controls referrer information ?
  • Permissions-Policy — Limits browser features ?

Exposed Files & Configurations

This domain has publicly accessible security-sensitive files or configurations:

  • ⚠️ Vulnerable WordPress Version (4.7.3) — CVE-2024-4439: Unauthenticated Stored XSS. Update to 6.5.2 or later immediately.
  • 👤 User enumeration exposed — Usernames are publicly discoverable via the REST API or author archives, aiding brute-force attacks ?

Need help securing your WordPress site? Contact us for a professional security audit.

Top 50 Plugins

Plugin Count
elementor 1,834,974
contact-form-7 1,805,395
elementor-pro 1,069,674
woocommerce 831,175
revslider 628,526
jetpack 473,249
js_composer 440,228
wp-rocket 341,005
essential-addons-for-elementor-lite 300,145
gravityforms 270,579
complianz-gdpr 262,997
cookie-law-info 236,572
instagram-feed 232,313
google-site-kit 226,154
sitepress-multilingual-cms 225,560
google-analytics-for-wordpress 217,459
header-footer-elementor 213,861
elementskit-lite 211,389
bluehost-wordpress-plugin 191,844
gutenberg 164,589
gutenberg-core 162,474
cookie-notice 155,603
litespeed-cache 135,239
the-events-calendar 134,880
wpforms-lite 131,470
gtranslate 130,461
astra-sites 121,039
popup-maker 118,166
woocommerce-payments 114,462
tablepress 112,366
coblocks 101,429
honeypot 99,514
astra-addon 96,982
duracelltomi-google-tag-manager 95,600
wp-smushit 95,268
all-in-one-seo-pack 94,836
LayerSlider 93,178
bb-plugin 91,997
megamenu 88,536
premium-addons-for-elementor 88,535
akismet 87,226
mailchimp-for-wp 85,188
cleantalk-spam-protect 85,035
woocommerce-gateway-stripe 84,457
ml-slider 82,764
borlabs-cookie 81,569
fusion-builder 81,119
wp-pagenavi 80,609
ewww-image-optimizer 80,505
formidable 79,254

Top 50 Themes

Theme Count
hello-elementor 627,686
Divi 519,455
astra 431,031
flatsome 140,279
Avada 126,551
generatepress 124,831
pub 111,883
oceanwp 85,062
kadence 80,297
enfold 73,148
salient 67,774
twentytwentyfour 59,833
h4 57,433
twentyseventeen 57,275
bb-theme 55,987
betheme 52,878
cocoon-master 52,403
blocksy 51,939
dt-the7 47,031
twentytwentyfive 44,923
neve 40,199
Avada-Child-Theme 38,272
sydney 37,893
woodmart 33,918
gox 33,881
bridge 33,424
twentytwentyone 32,668
lightning 31,833
twentytwenty 30,617
swell 28,847
Impreza 27,049
bricks 26,563
twentytwentythree 24,358
Newspaper 24,061
voxel 23,714
kubio 20,713
sinatra 20,411
twentytwentytwo 20,219
uncode 19,485
epik-redesign 19,279
twentysixteen 18,605
storefront 18,237
pro 18,053
Total 14,987
extendable 14,808
yith-wonder 14,114
hello-theme-child-master 13,652
themify-ultra 13,248
yootheme 13,220
hestia 13,119
Copyright 2026, tldwp.com. All rights reserved. WordPress OSINT or security needs? Reach out!